[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2018:1220-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":36,"duplicates":37,"related":38,"reserved_at":9,"published_at":50,"modified_at":51,"state":9,"summary":52,"references_raw":54,"kevs":179,"epss":9,"epss_history":180,"metrics":181,"affected":182},"SUSE-SU-2018:1220-1","Security update for the Linux Kernel\n\n\n\nThe SUSE Linux Enterprise 12 SP1 LTSS kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-1087: And an unprivileged KVM guest user could use this flaw to potentially escalate their privileges inside a guest. (bsc#1087088)\n- CVE-2018-8897: An unprivileged system user could use incorrect set up interrupt stacks to crash the Linux kernel resulting in DoS issue. (bsc#1087088)\n- CVE-2018-8781: The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c had an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space (bnc#1090643).\n- CVE-2018-10124: The kill_something_info function in kernel/signal.c might allow local users to cause a denial of service via an INT_MIN argument (bnc#1089752).\n- CVE-2018-10087: The kernel_wait4 function in kernel/exit.c in might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value (bnc#1089608).\n- CVE-2018-7757: Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c allowed local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated by the /sys/class/sas_phy/phy-1:0:12/invalid_dword_count file (bnc#1084536).\n- CVE-2017-13220: An elevation of privilege vulnerability in the Upstream kernel bluez was fixed. (bnc#1076537).\n- CVE-2017-11089: A buffer overread is observed in nl80211_set_station when user space application sends attribute NL80211_ATTR_LOCAL_MESH_POWER_MODE with data of size less than 4 bytes   (bnc#1088261).\n- CVE-2017-0861: Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem allowed attackers to gain privileges via unspecified vectors (bnc#1088260).\n- CVE-2018-8822: Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c could be exploited by malicious NCPFS servers to crash the kernel or execute code (bnc#1086162).\n- CVE-2017-18203: The dm_get_from_kobject function in drivers/md/dm.c allowed local users to cause a denial of service (BUG) by leveraging a race condition with __dm_destroy during creation and removal of DM devices (bnc#1083242).\n\nThe following non-security bugs were fixed:\n\n- Integrate fixes resulting from bsc#1088147 More info in the respective commit messages.\n- kabi: x86/kaiser: properly align trampoline stack (bsc#1087260).\n- dcache: Add cond_resched in shrink_dentry_list (bsc#1086194).\n- kGraft: fix small race in reversion code (bsc#1083125).\n- kabi/severities: Ignore kgr_shadow_* kABI changes\n- kvm/x86: fix icebp instruction handling (bsc#1087088).\n- livepatch: Allow to call a custom callback when freeing shadow variables (bsc#1082299 fate#313296).\n- livepatch: Initialize shadow variables safely by a custom callback (bsc#1082299 fate#313296).\n- usbnet: Fix a race between usbnet_stop() and the BH (bsc#1083275).\n- x86/entry/64: Do not use IST entry for #BP stack (bsc#1087088).\n- x86/espfix: Fix return stack in do_double_fault() (bsc#1085279).\n- x86/kaiser: properly align trampoline stack (bsc#1087260).\n- x86/retpoline: do not perform thunk calls in ring3 vsyscall code (bsc#1085331).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34],{"_key":15},"CVE-2017-0861",{"_key":17},"CVE-2017-11089",{"_key":19},"CVE-2017-13220",{"_key":21},"CVE-2017-18203",{"_key":23},"CVE-2018-10087",{"_key":25},"CVE-2018-10124",{"_key":27},"CVE-2018-1087",{"_key":29},"CVE-2018-7757",{"_key":31},"CVE-2018-8781",{"_key":33},"CVE-2018-8822",{"_key":35},"CVE-2018-8897",[],[],[39,40,41,42,43,44,45,46,47,48,49],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},"2018-05-11T15:30:04Z","2026-02-04T03:10:18.359733Z",{"cisa_kev":53,"cisa_ransomware":53,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[55,61,66,70,74,78,82,86,90,94,98,102,106,110,114,118,122,126,130,134,139,143,147,151,155,159,163,167,171,175],{"url":56,"sources":57,"tags":59},"https://www.suse.com/support/update/announcement/2018/suse-su-20181220-1/",[58],"osv_suse",[60],"Advisory",{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1076537",[58],[65],"REPORT",{"url":67,"sources":68,"tags":69},"https://bugzilla.suse.com/1082299",[58],[65],{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1083125",[58],[65],{"url":75,"sources":76,"tags":77},"https://bugzilla.suse.com/1083242",[58],[65],{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1083275",[58],[65],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1084536",[58],[65],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1085279",[58],[65],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1085331",[58],[65],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1086162",[58],[65],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1086194",[58],[65],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1087088",[58],[65],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1087260",[58],[65],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1088147",[58],[65],{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1088260",[58],[65],{"url":119,"sources":120,"tags":121},"https://bugzilla.suse.com/1088261",[58],[65],{"url":123,"sources":124,"tags":125},"https://bugzilla.suse.com/1089608",[58],[65],{"url":127,"sources":128,"tags":129},"https://bugzilla.suse.com/1089752",[58],[65],{"url":131,"sources":132,"tags":133},"https://bugzilla.suse.com/1090643",[58],[65],{"url":135,"sources":136,"tags":137},"https://www.suse.com/security/cve/CVE-2017-0861",[58],[138],"WEB",{"url":140,"sources":141,"tags":142},"https://www.suse.com/security/cve/CVE-2017-11089",[58],[138],{"url":144,"sources":145,"tags":146},"https://www.suse.com/security/cve/CVE-2017-13220",[58],[138],{"url":148,"sources":149,"tags":150},"https://www.suse.com/security/cve/CVE-2017-18203",[58],[138],{"url":152,"sources":153,"tags":154},"https://www.suse.com/security/cve/CVE-2018-10087",[58],[138],{"url":156,"sources":157,"tags":158},"https://www.suse.com/security/cve/CVE-2018-10124",[58],[138],{"url":160,"sources":161,"tags":162},"https://www.suse.com/security/cve/CVE-2018-1087",[58],[138],{"url":164,"sources":165,"tags":166},"https://www.suse.com/security/cve/CVE-2018-7757",[58],[138],{"url":168,"sources":169,"tags":170},"https://www.suse.com/security/cve/CVE-2018-8781",[58],[138],{"url":172,"sources":173,"tags":174},"https://www.suse.com/security/cve/CVE-2018-8822",[58],[138],{"url":176,"sources":177,"tags":178},"https://www.suse.com/security/cve/CVE-2018-8897",[58],[138],[],[],[],[183,196,200,204,209,214,218,222,227,231,235,240,244,248,255,259],{"ecosystem":184,"name":185,"vendor":186,"product":187,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":187,"source":9,"versions":189},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise Server 12 SP1-LTSS","rpm",[190],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},"lt3_12_74_60_64_88_1",true,"ecosystem","3.12.74-60.64.88.1","excluding",{"ecosystem":184,"name":185,"vendor":186,"product":197,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":197,"source":9,"versions":198},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[199],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":185,"vendor":186,"product":201,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":201,"source":9,"versions":202},"kernel-default&distro=SUSE OpenStack Cloud 6",[203],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":205,"vendor":186,"product":206,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":206,"source":9,"versions":207},"kernel-ec2","kernel-ec2&distro=SUSE Linux Enterprise Module for Public Cloud 12",[208],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":210,"vendor":186,"product":211,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":211,"source":9,"versions":212},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[213],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":210,"vendor":186,"product":215,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":215,"source":9,"versions":216},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[217],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":210,"vendor":186,"product":219,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":219,"source":9,"versions":220},"kernel-source&distro=SUSE OpenStack Cloud 6",[221],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":223,"vendor":186,"product":224,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":224,"source":9,"versions":225},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[226],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":223,"vendor":186,"product":228,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":228,"source":9,"versions":229},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[230],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":223,"vendor":186,"product":232,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":232,"source":9,"versions":233},"kernel-syms&distro=SUSE OpenStack Cloud 6",[234],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":236,"vendor":186,"product":237,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":237,"source":9,"versions":238},"kernel-xen","kernel-xen&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[239],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":236,"vendor":186,"product":241,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":241,"source":9,"versions":242},"kernel-xen&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[243],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":236,"vendor":186,"product":245,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":245,"source":9,"versions":246},"kernel-xen&distro=SUSE OpenStack Cloud 6",[247],{"version":191,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":194,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":249,"vendor":186,"product":250,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":250,"source":9,"versions":251},"kgraft-patch-SLE12-SP1_Update_27","kgraft-patch-SLE12-SP1_Update_27&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[252],{"version":253,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":195,"fixed_in":9},"lt1_2_3_1","1-2.3.1",{"ecosystem":184,"name":249,"vendor":186,"product":256,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":256,"source":9,"versions":257},"kgraft-patch-SLE12-SP1_Update_27&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[258],{"version":253,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":195,"fixed_in":9},{"ecosystem":184,"name":249,"vendor":186,"product":260,"cpe_part":9,"purl_type":188,"purl_namespace":186,"purl_name":260,"source":9,"versions":261},"kgraft-patch-SLE12-SP1_Update_27&distro=SUSE OpenStack Cloud 6",[262],{"version":253,"is_range":192,"range_type":193,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":195,"fixed_in":9}]